recurly / recurly-js

Simple subscription billing in the browser
https://js.recurly.com/
MIT License
645 stars 138 forks source link

Updates packages #818

Closed chrissrogers closed 1 year ago

chrissrogers commented 1 year ago
guardrails[bot] commented 1 year ago

:warning: We detected 10 security issues in this pull request:

Vulnerable Libraries (10)
Severity | Details :-: | :-- Medium | [pkg:npm/ua-parser-js@0.7.35@0.7.35](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L18949) (t) - **no patch available** Low | [pkg:npm/node-fetch@2.6.9@2.6.9](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L15231) (t) - **no patch available** Medium | [pkg:npm/postcss@7.0.39@7.0.39](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L16035) (t) - **no patch available** High | [pkg:npm/json-stable-stringify@1.0.2@1.0.2](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L13159) (t) - **no patch available** High | [pkg:npm/cacheable-request@6.1.0@6.1.0](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L2708) (t) upgrade to: *10.2.7* High | [pkg:npm/json5@1.0.2@1.0.2](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L14119) (t) upgrade to: *2.2.2* Critical | [pkg:npm/loader-utils@1.4.2@1.4.2](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L14105) (t) - **no patch available** Low | [pkg:npm/request@2.88.2@2.88.2](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L16712) (t) - **no patch available** Medium | [pkg:npm/got@9.6.0@9.6.0](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L2811) (t) - **no patch available** Medium | [pkg:npm/node-fetch@2.6.7@2.6.7](https://github.com/recurly/recurly-js/blob/3925d1b3cc3071e0e134c9c772809e463fcf7094/package-lock.json#L7231) (t) - **no patch available** More info on how to fix Vulnerable Libraries in [JavaScript](https://docs.guardrails.io/docs/en/vulnerabilities/javascript/using_vulnerable_libraries.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

coveralls commented 1 year ago

Coverage Status

Coverage: 92.726% (+0.09%) from 92.637% when pulling 3925d1b3cc3071e0e134c9c772809e463fcf7094 on packages into 140de120318d726a81775a7429c8760acd1c27be on master.